openssl/crypto/asn1
Dr. Stephen Henson d9a9d10f4f Check for potentially exploitable overflows in asn1_d2i_read_bio
BUF_mem_grow and BUF_mem_grow_clean. Refuse attempts to shrink buffer
in CRYPTO_realloc_clean.

Thanks to Tavis Ormandy, Google Security Team, for discovering this
issue and to Adam Langley <agl@chromium.org> for fixing it. (CVE-2012-2110)
2012-04-19 16:19:56 +00:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
a_bitstr.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
a_bool.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
a_bytes.c PR: 1835 2009-02-14 21:49:38 +00:00
a_d2i_fp.c Check for potentially exploitable overflows in asn1_d2i_read_bio 2012-04-19 16:19:56 +00:00
a_digest.c Audit libcrypto for unchecked return values: fix all cases enountered 2009-09-23 23:43:49 +00:00
a_dup.c PR: 1644 2009-09-06 15:49:46 +00:00
a_enum.c - use BN_set_negative and BN_is_negative instead of BN_set_sign 2005-04-22 20:02:44 +00:00
a_gentm.c experimental function to convert ASN1_TIME to tm, not used or even compiled in yet 2010-05-03 12:17:44 +00:00
a_i2d_fp.c Update util/ck_errf.pl script, and have it run automatically 2005-05-09 00:27:37 +00:00
a_int.c asn1/t_x509.c: fix serial number print, harmonize with a_int.c. 2012-01-11 21:12:22 +00:00
a_mbstr.c Fix unitialized warnings 2009-10-04 16:52:51 +00:00
a_object.c PR: 2556 (partial) 2011-07-14 12:01:53 +00:00
a_octet.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
a_print.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
a_set.c Update from 1.0.0-stable. 2009-07-27 21:22:02 +00:00
a_sign.c add X509_CRL_sign_ctx function 2010-03-14 12:52:38 +00:00
a_strex.c Fix escaping code for string printing. If *any* escaping is enabled we 2011-01-03 01:31:24 +00:00
a_strnid.c PR: 2433 2011-01-24 16:19:52 +00:00
a_time.c experimental function to convert ASN1_TIME to tm, not used or even compiled in yet 2010-05-03 12:17:44 +00:00
a_type.c Fix some warnings. 2008-03-16 20:59:10 +00:00
a_utctm.c experimental function to convert ASN1_TIME to tm, not used or even compiled in yet 2010-05-03 12:17:44 +00:00
a_utf8.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
a_verify.c Support routines for ASN1 scanning function, doesn't do much yet. 2010-12-13 18:15:28 +00:00
ameth_lib.c Initial experimental support for X9.42 DH parameter format to handle 2011-12-07 00:32:34 +00:00
asn1.h Fix error codes. 2011-02-03 10:03:23 +00:00
asn1_err.c Fix error codes. 2011-02-03 10:03:23 +00:00
asn1_gen.c PR: 2090 2009-11-10 00:48:07 +00:00
asn1_lib.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
asn1_locl.h Support routines for ASN1 scanning function, doesn't do much yet. 2010-12-13 18:15:28 +00:00
asn1_mac.h Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
asn1_par.c PR: 2056 2009-10-01 00:11:04 +00:00
asn1t.h Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
asn_mime.c corrected fix to PR#2711 and also cover mime_param_cmp 2012-03-12 16:32:19 +00:00
asn_moid.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
asn_pack.c Update from 1.0.0-stable. 2009-07-27 21:22:02 +00:00
bio_asn1.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
bio_ndef.c no need to include memory.h 2011-04-30 23:37:42 +00:00
charmap.h Bunch of constifications. 2007-10-13 15:51:32 +00:00
charmap.pl New ASN1_STRING_print_ex() and X509_NAME_print_ex() 2000-07-28 01:58:15 +00:00
d2i_pr.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
d2i_pu.c PR: 2088 2009-11-12 19:56:56 +00:00
evp_asn1.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
f_enum.c There have been a number of complaints from a number of sources that names 2000-06-01 22:19:21 +00:00
f_int.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
f_string.c There have been a number of complaints from a number of sources that names 2000-06-01 22:19:21 +00:00
i2d_pr.c Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru> 2007-11-20 13:37:51 +00:00
i2d_pu.c ecc api cleanup; summary: 2005-05-16 10:11:04 +00:00
Makefile make update 2011-02-03 10:17:53 +00:00
n_pkey.c Fix warnings. 2010-06-12 14:13:23 +00:00
nsseq.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
p5_pbe.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
p5_pbev2.c Fix memory leak. 2011-02-07 13:34:00 +00:00
p8_pkey.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
t_bitst.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
t_crl.c Fix warnings. 2010-06-12 14:13:23 +00:00
t_pkey.c Revert to original... 2006-04-15 13:15:25 +00:00
t_req.c Fix X509_REQ_print_ex() to process extension options. 2007-05-22 23:31:29 +00:00
t_spki.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
t_x509.c fix warning 2012-01-15 13:30:41 +00:00
t_x509a.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
tasn_dec.c Fix warnings. 2010-06-12 14:13:23 +00:00
tasn_enc.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
tasn_fre.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
tasn_new.c PR: 2013 2009-09-02 13:54:50 +00:00
tasn_prn.c ans1/tasn_prn.c: avoid bool in variable names. 2012-03-29 17:48:19 +00:00
tasn_scn.c Fix error codes. 2011-02-03 10:03:23 +00:00
tasn_typ.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
tasn_utl.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
x_algor.c New function X509_ALGOR_set_md() to set X509_ALGOR (DigestAlgorithmIdentifier) 2010-03-11 13:27:05 +00:00
x_attrib.c More linker bloat reorganisation: 2001-07-27 02:22:42 +00:00
x_bignum.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
x_crl.c Support routines for ASN1 scanning function, doesn't do much yet. 2010-12-13 18:15:28 +00:00
x_exten.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
x_info.c Merge from the ASN1 branch of new ASN1 code 2000-12-08 19:09:35 +00:00
x_long.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
x_name.c PR: 2736 2012-02-27 18:45:28 +00:00
x_nx509.c Update obsolete email address... 2008-11-05 18:39:08 +00:00
x_pkey.c Revert the size_t modifications from HEAD that had led to more 2008-11-12 03:58:08 +00:00
x_pubkey.c Fix memory leak cause by race condition when creating public keys. 2012-02-28 14:47:02 +00:00
x_req.c Using correct lock for X509_REQ. 2006-09-22 17:06:09 +00:00
x_sig.c Get rid of ASN1_ITEM_FUNCTIONS dummy function 2001-02-23 12:47:06 +00:00
x_spki.c Get rid of ASN1_ITEM_FUNCTIONS dummy function 2001-02-23 12:47:06 +00:00
x_val.c Get rid of ASN1_ITEM_FUNCTIONS dummy function 2001-02-23 12:47:06 +00:00
x_x509.c Add call to ENGINE_register_all_complete() to ENGINE_load_builtin_engines(), 2010-10-03 18:58:09 +00:00
x_x509a.c Update obsolete email address... 2008-11-05 18:39:08 +00:00